Application No. 09/893,635 
Amendment dated September 22, 2005 
Reply to Office Action of March 22, 2005 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 

Claim 1 (canceled). 

Claim 2 (currently amended): The method of claim 8+, wherein if the digital certificate is 
valid the method further comprises the steps of: 

transmitting the encryption key to the client computer; and 

the client computer decrypting the content with the encryption key. 
Claim 3 (original): The method of claim 2, further comprising the steps of: 

encrypting the encryption key, wherein: 

the transmitting step transmits the encrypted encryption key to the client 

computer; and 

the client computer decrypting the encrypted encryption key. 

Claim 4 (original): The method of claim 3, further comprising the step of: 
determining a hardware profile of the client computer, wherein: 
the encrypting step encrypts the encryption key with the hardware profile of the client 

computer. 

Claim 5 (original): The method of claim 4, wherein: 

the hardware profile of the client computer is stored and linked with a copy of the 
digital certificate on the server; and 

the determining step retrieves the hardware profile that is linked with the copy of the 
digital certificate. 

Claim 6 (original): The method of claim 2, wherein encryption key is only stored in volatile 
memory of the client computer. 
Claim 7 (canceled). 

Claim 8 (currently amended): A method of digital rights management (DRM), comprising 
the steps of: 

receiving content at a client computer, wherein the content is encrypted with an 
encryption key; 

the client computer requesting the encryption key from a server using a digital 
certificate. Th e m e thod of claim 7, wherein the digital certificate includes a public key of a 
public key infrastructure (PKI) key pai r, the server is remote from the client computer and a 
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first hardware profile of the client computer is stored and linked with a copy of the diRital 
certificate on the server, and the requesting step includes transmitting a second hardware 
profile of the client computer to the server: 
the server receiving the request; 

determining if the digital certificate is valid, wherein the determining step determines 
whether the second hardware profile is the same as the first hardware profile; 
and the method further comprises the step of: 

encrypting the second hardware profile of the client computer with a random session 
key; and 

encrypting the random session key with the public key of the PKI key pair. 
Claim 9 (original): The method of claim 8, wherein: 

a copy of the digital certificate including a private key of the PKI key pair is stored on 
the server; and 

the determining step includes decrypting the random session key with the private key 
of the PKI key pair. 

Claim 10 (currently amended): The method of claim 84-, wherein: 
the digital certificate includes a certificate serial number; 

a copy of the digital certificate that includes the certificate serial number is stored on 
the server; 

the requesting step includes transmitting the certificate serial number to the server; 

and 

the determining step includes retrieving the copy of the digital certificate using the 
certificate serial number. 

Claim 1 1 (currently amended): The method of claim 84-, wherein the receiving step receives 
content from a website server. 

Claim 12 (currently amended): The method of claim 84-, wherein the server is a first server 
and the receiving step receives content from a second server co-located with the first server. 
Claim 13 (canceled). 

Claim 14 (currently amended): The system of claim 2043, wherein the server software 
further comprises instructions for: 

if the digital certificate is valid, transmitting the encryption key to the client computer. 
Claim 15 (original): The system of claim 14, wherein the client computer software further 
comprises instructions for: 

decrypting the content with the encryption key. 

Page 3 of 7 

WAS:! 15379.1 



Application No. 09/893,635 
Amendment dated September 22, 2005 
Reply to Office Action of March 22, 2005 

Claim 16 (currently amended): The system of claim 204^, wherein the server software 
further comprises instructions for: 

encrypting the encryption key, wherein the transmitting instruction transmits the 
encrypted encryption key to the client computer. 

Claim 17 (original): The system of claim 16, wherein the server software further comprises 
instructions for: 

determining a hardware profile of the client computer, wherein the encrypting 
instruction encrypts the encryption key with the hardware profile of the client computer. 
Claim 1 8 (original): The system of claim 16, wherein the hardware profile of the client 
computer is stored and linked with a copy of the digital certificate on the server and the 
determining instruction retrieves the hardware profile that is linked with the copy of the 
digital certificate. 
Claim 19 (canceled). 

Claim 20 (currently amended): A system for digital rights management comprising: 
a digital rights management (DRM) server; and 

a client computer, wherein the client computer includes software comprising 
instructions for: 

receiving content wherein the content is encrypted with an encryption key; 

and 

requesting the encryption key from the DRM server using a digital certificate. 
The system of claim 19, wherein the digital certificate includes a public key of a public key 
infrastructure (PKI) key pair and the DRM server is remote from the client computer; and 
wherein the DRM server includes software comprising instructions for: 
receiving the request; and 
determining if the digital certificate is valid; and 
wherein the server further includes a first hardware profile of the client computer 
stored and linked with a copy of the digital certificate, the requesting instruction includes 
transmitting a second hardware profile of the client computer to the server, the determining 
instruction determines whether the second hardware profile is the same as the first hardware 
profile and the client computer software further comprises instructions for: 

encrypting the second hardware profile of the client computer with a random session 
key; and 

encrypting the random session key with the public key of the PKI key pair. 
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Claim 21 (original): The system of claim 20, wherein the server includes a copy of the digital 
certificate including a private key of the PKI key pair and the determining instruction 
includes decrypting the random session key with the private key of the PKI key pair. 
Claim 22 (currently amended): The system of claim 20±J, wherein: 

the digital certificate includes a certificate serial number; 

the server includes a copy of the digital certificate including the certificate serial 
number; 

the requesting instruction includes transmitting the certificate serial number to the 
server; and 

the determining instruction includes retrieving the copy of the digital certificate using 
the certificate serial number. 

Claim 23 (currently amended): The system of claim 204-^3, wherein the receiving instruction 
receives content from a website server. 

Claim 24 (currently amended): The system of claim 2044, wherein the server is a first server 
and the receiving instruction receives content from a second server co-located with the first 
server. 

Claim 25 (canceled). 

Claim 26 (currently amended): The computer-readable medium of claim 292$, further 
comprising instructions for: 

receiving the encryption key from the server, wherein the encryption key is encrypted; 

and 

decrypting the encryption key. 

Claim 27 (original): The computer-readable medium of claim 26, wherein: 

the encryption key is encrypted with a hardware profile of the client computer; and 
the decrypting instruction decrypts the encryption key with the hardware profile of the 

client computer. 

Claim 28 (canceled). 

Claim 29 (currently amended): A computer-readable medium comprising instructions for 
digital rights management by: 

receiving content at a client computer, wherein the content is encrypted with an 
encryption key: and 

requesting the encryption key from a digital rights management (DRM) server using a 
digital certificate. Th e comput e r r e adabl e m e dium of claim 28. wherein the digital certificate 
includes a public key of a public key infrastructure (PKI) key pair and wherein: 
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the server is remote from the client computer; 

the server receives the request; 

the server determines if the digital certificate is valid; 

a first hardware profile of the client computer is stored on the server; and 
the requesting instruction includes transmitting a second hardware profile of the client 
computer to the server, wherein the DRM determines if the digital certificate is valid by 
comparing the second hardware profile of the client computer to the first hardware profile of 
the client computer, the computer readable medium further comprising instructions for: 

encrypting the second hardware profile of the client computer with a random session 
key; and 

encrypting the random session key with the public key of the PKI key pair. 
Claim 30 (currently amended): The computer-readable medium of claim 292$ wherein: 

the digital certificate includes a certificate serial number; 

the server includes a copy of the digital certificate including the certificate serial 
number; 

the requesting instruction includes transmitting the certificate serial number to the 
server; and 

the DRM determines if the digital certificate is valid by retrieving the copy of the 
digital certificate using the certificate serial number. 

Claim 31 (currently amended): The computer-readable medium of claim 292$ wherein the 
receiving instruction receives content from a website server. 

Claim 32 (currently amended): The computer-readable medium of claim 292£wherein the 
server is a first server and the receiving instruction receives content from a second server co- 
located with the first server. 
Claims 33-40 (canceled). 
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